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What is claimed is: 

1. In a cryptographic system wherein a 
certifying authority issues digital certificates 

5 identifying users of said system, said digital 

certificates being digitally signed with a private key 
of said certifying authority to form a digital 
signature and rec[uiring a public key of said certifying 
authority in order to verify said digital signature, 

10 and wherein a user transaction in said cryptographic 

system requires verification by a recipient of said 
user transaction, said verification based on 
information in said digital certificates and requiring 
said public key, a method of controlling access to said 

15 public key comprising the steps of: 

denying access to said public key; 

providing said recipient with at least one message 
containing rules of said system, said rules including 
maintaining secrecy of said public key; 

2 0 by said recipient, digitally signing said at least 

one document, by which said recipient agrees to said 
rules ; and 

in response to said digital signing, permitting 
said recipient to utilize said public key. 

25 

2. A method as in claim 1 wherein saidvstep of 
providing includes ther step of providing said recipient 
with a secure devi9|e ^containing said public key, 
wherein said publicycey cannot be obtained from said 

3 0 secure device* 

3. A methoffiX of ^ enforcing a security policy in a 
cryptographic system, said policy requiring controlling 
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access to a public key, sa^d method comprising the 
steps of : 

denying access to saTid public key; 

providing a recipient with a message containing 
5 rules of said cryptographic system, said rules 

including maintaining secrecy of said public key; 

by said recipient^, digitally signing said 
document, by which said recipient agrees to said rules; 

in response to s^aid digitally signing, permitting 
10 said recipient to utilize public key. 

g 4. A method jpf enforcing a security policy in a 

^ cryptographic system, said policy requiring controlling 

access to a public^ key, said method comprising the 
H 15 steps of : 

y providing a ^recipient with a document containing 

□ rules of said system and with a secure device 
containing an inactive form of said public key, wherein 

^ said public key /cannot be obtained from said device; 

□ 20 by said^^cipient, digitally signing said 
^ document ; 

in respon^&e to said digital signing, activating 
said public kew in said secure device. 

F\ 

25 5. A^etnod of enforcing a security policy in a 

cryptographic system, said policy recjuiring controlling 
access to aVpublic key of a certifying authority, said 
method comprYsing the steps of: 

by ^^1^ certifying authority, 
3 0 providing a user with a message containing 

rule^ of said system and with a secure device 
containing an inactive form of said public key, 
wheriein said public key cannot be obtained from 



saic| device; 
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10 



by said user, 

indidbting an intent to follow said rules, 
said indicating including the steps of: 

hash Lng said message to obtain a hashed 

document ; 

digitally signing said hashed document to 
form a digital agreement; and 

returning said digital agreement to said 
certifying authority; 

ise to said indicating by said user, 
by iaid certifying authority, activating said 
public key in/said secure device. 



xn respo] 



15 



20 



6. A method as in any one of claims 1-5 wherein 
each user of /the system has a private key, and wherein 
said rules include at least one of rules requiring 
payment to a I third party upon: 

each use of said public key; 



each h^G of^a user's private key; 
each Qon^irm-to transaction by a user. 



rication of a certificate's status; and 



25 



7. A' Method as in any one of claims 1-5 wherein 

said rules lir^clude rules to pay for use by said 

recipient of intellectual property used in creating or 
operating the system. 



30 



8. |a method as in claim 1 wherein said user 
transaction is invalid until said step of digital 



signing ife performed. 



9. I A method as in claim 1 further comprising the 
steps of] 
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in response to said signing by said recipient, 
said certifying authority accepting a transaction from 
said recipient, said transaction based on said user 
transaction. 



10. In a cryptogpraphic system wherein a 
certifying authority issues digital certificates 
identifying users of rsaid system, said digital 



certificates being digitally signed with a private key 
10 of said certifying authority to form a digital 

signature and requiring a public key of said certifying 
authority in order /to verify said digital signature, 
and wherein a user /transaction in said cryptographic 
system requires verification by a recipient of said 
15 user transaction, t/said verification based on 



information in sa'id digital certificates and requiring 

said public key, //a method of controlling access to said 

public key comprising the steps of: 

providing said recipient with a secure device 
2 0 containing an inactive form of said public key, wherein 

said public key/ cannot be obtained from said secure 

device; 7 

in respoj^e to a predetermined transaction with 

said secure Idev^ce,/ activating said inactive public key 
2 5 is said secure device, said predetermined transaction 

including inforination from the secure device 



identifying qserational capabilities of the secure 
device and uni^ely identifying said secure device and 
further including information uniquely binding said 



T 



30 recipient to? said predetermined transaction. 



11. . In a cryptographic system wherein a 
certifying authority issues digital certificates 
identifying \users of said system, said digital 
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certificates being digitally signed wi,th a private key 
of said certifying authority to formya digital 
signature and requiring a public ke/ of said certifying 
authority in order to verify said .digital signature, 
5 and wherein a user transaction in^said cryptographic 

system requires verification byy4 recipient of said 
user transaction, said verification based on 
information in said digital certificates and requiring . 
said public key, a methodof/ controlling access to said 

10 public key comprising thfe ^steps of: 

providing said recip^ierft with a secure device; 
in response to a ptredejbetrmined transaction with 
said secure device, transferring said public key to 
said secure device, sa4k/preddter transaction 

15 including information fvam the secure device 

identifying operational Capabilities of the secure 
device and uniquely identifying said secure device and 



20 



further including/^inf ormation uniquely binding said 
recipient to said predetemined transaction, wherein 
said public keyy^cannot be obtained from said secure 
device. 

12. A mfethod as in one of claims 10 and 11 
wherein said/ public key in said secure device becomes 



2 5 inactive after a predetermined time period, said method 

further comprising the steps of: 

after/ said public key in said device becomes 
inactive, 

in response to another predetermined transaction 
30 with said secure device, activating said inactive 

public key is said secure device, said other 
predetetrmined transaction including information from 
the secure device identifying operational capabilities 
of the /secure device and further including information' 
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uniquely binding saiii recipient to said other 
predetermined transaction . 

13. A method /of enforcing a policy in a 
5 cryptographic communication system comprising the steps 

of: 

forming a digital message by a user; 
combining with said message at least one user 
rule; / 
10 forming a digital user signature based on said 

digital message, / said at least one user rule and a 

private key of said user; 

I 

combining said digital message, said at least one 

I 

user rule and ^^i*^ digital user signature to form a 
15 digital user transaction; and 



30 



combining|with said digital user transaction a 
digital identifying certificate issued by a certifying 
authority, saiid identifying certificate having a 
plurality of digital fields, at least one of said 
20 fields identifying said user, wherein 

said ^|\east one user rule specifying conditions 
under which sa^-d digital message transaction is valid. 
I 

14, I Aime£hod as in claim 13, further comprising 
2 5 the step f^lY \ 

combir/ng With said digital transaction a digital 
authorizing certificate, separate from said identifying 
certificate and issued by a sponsor of said user for 
authorizirigV transactions by said user* 




A method of enforcing a policy in a 

hie communication system comprising the steps 
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10 



15 



20 



receiving a digital user transaction including a 
digital message, at least one user rule specifying 
conditions under wtiich said transaction is valid and a 
digital user signaJture based on said digital message, 
said at least one /user rule and on a private key of a 
user; 

receiving a Aigital identifying certificate issued 
by a certifying €«uthority and having a plurality of 
digital fields, ^t least one of said fields identifying 
said user; 

verifying ^aid transaction based on information in 
said certificate and in said at least one user rule; 
and 

accepting /said transaction based on said outcome, 
of said verifying. 



16. A 
the step of: 

receiviEn* 
separate fro 
by a sponsor 



lod as in claim 15, further comprising 



25 



digital authorizing certificate, 
saUd identifying certificate and issued 
aid user and authorizing transactions 
by said user ;\ and wherein said step of verifying 
includes the /step of: 

verifying said transaction based on information in 
said authorizing certificate. 



17. A method as in any one of claims 13-16 
wherein said at least one user rule includes at least 
one of: 

(a) allowed document types of said transaction; 

(b) allowed locations at which transactions can 
' be formed; 

(c) allowed times at which transactions may be 
formed; 
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ed) a time period within which said signature is 
valid; 

(e) a monetary limit for said transaction; and 

(f) co-signer requirements for said transaction. 



